AMENDMENTS TO THE SPECIFICATION 

Please replace Paragraph [0037] with the following paragraph rewritten in 
amendment format: 

[0037] T - he --- ob j eG t---- of -- t - h& ---i f t v6ntion ---4 S" - aGh 4 &ved ---- by ---- a A digital certificate 
issuing system with intrusion tolerance ability, comprising: at lea 

< du tor, sepdio.g out a certificate to be sp i ;■ . \; nei; k 

' - \*n-VvOj the ce 1 ' cate to be scre-d. making ca'cu'a» o? cjew. 
keys ore-stored, and sending out a calculation result through a sec ^ >N , . 

^ - onhne , secrej share cgmbjners,, each receiving, , the ca[culatign results from, 

N - - secret share calculators, comparing t calculation results 

rej^res*"* 3* o n^ pre--tpred upon rece.v no a t eas t ca j : ; 
g<:J sub-secret-key corresponding to the t calculation result. ; ==.ii:-vj 
\ 1 • - on the t calculation results and the second sub-secret-kev 

'v...tcaicul.aj;io n..re 

sec ret Key distributor, pre-stprmg the tirsS syb-secret-keys =n each of the o - ■ > •, 
share calculators, and pre-storinq the second sub-secret-keys and equation 
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serweeteeMoHS^-^M cs;j^ -h-u^. Gak^teK^-s a?-vd ■■■ se€-^ €-i-:-a--e ■■■■■■ i:>--iB^--4mm 

Please replace Paragraph [0041] with the following paragraph rewritten in 
amendment format: 

[0041] Wherein distributing the signing private key of a CA comprises: 

A. setting a digital certificate issuing mechanism which comprises an online 
task distributor, k online secret share calculators, m online secret share combiners, 
broadcast channels and an offline secret key distributor, wherein k and m are positive 
integers; 

B. said offline secret key distributor expressing the signing private key d as a 
sum of t first sub-secret-keys dji and a second sub-secret-key caca; wherein d, t, c, j, i 
and a all are positive integers, t < k, j is the machine number of the jth secret share 
calculator, i is the first sub-secret-key number inside the machine of the secret share 
calculators, a s the second sub-secret-key number inside the machine of the sj c \ 

> N > J = 1, 2 ... k, and i = 1, 2 ... I; 

C. said offline secret key distributor generates k*l random positive integers 
as the first sub-secret-keys cl. u 4jl-and distributing them to k secret share calculators so 
that each secret share calculator stores I first sub-secret-keys dLjd}i; based on the 
additive relation between t first sub-secret-keys and one second sub-secret-key in Step 
B, obtaining second sub-secret-keys c g ea and their equation combination 
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representations by subtracting; and then obtaining their equivalent combination sets 
from the equation combination representations and putting them into a large group; 

D. according to combiner security condition, said offline secret key distributor 
making exhaustive search for all equivalent combination sets in said large group and 
taking one equation combination representation from each equivalent combination set 
as a representative; putting all representatives of equivalent combination sets into m 
subgroups, obtaining the second sub-secret-keys c^sa and their equation combination 
representations of the m subgroups; 

E. said offline secret key distributor sending second sub-secret-keys c g G3 
and their equation combination representations of the m subgroups to m secret share 
combiners for pre-storage; 

Please replace Paragraph [0042] with the following paragraph rewritten in 
amendment format: 

[0042] The process of computing digital signature for a certificate comprises: 

F. said online task distributor sending said certificate to be signed and its 
hash value M to said k secret share calculators via the first broadcast channel through 
broadcasting data packets; 

G. t or more than t secret share calculators among k secret share calculators 
checking correctness of said certificate to be signed based on the received certificate 
and its hash value M, and then making ascending power computation^ * ; sending 
secret share calculators number j, said processed certificate and its hash value M, the 
secret key number i inside the secret share calculators and I computation results M * 
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to m secret share combiners via the second broadcast channel through broadcasting 
data packets; 

H. said m secret share combiners checking the received results, and then 
comparing the received results with pre-stored equivalent combination representations 
of the second sub-secret-keys c a e-a and finding out a matching equivalent combination 
representation and the corresponding second sub-secret-key c^a, and then checking 
correctness of said certificate to be signed; after that, to obtain R by multiplying 
ascending power computation results of t secret share calculators matching to the 

combination; finally, computing M c " based on the found c^gs, and multiplying 

^ C "with R to obtain a digital signature S=M d Md-; 

I. generating a certificate based on said digital signature and the content of 
said certificate to be signed. 

Please replace Paragraph [0044] with the following paragraph rewritten in 
amendment format: 

[0044] Preferably, Step C further comprising: 

c1 . said offline secret key distributor generating k*l random positive integers 
as first sub-secret-keys ci.dii and sending them to k secret share calculators with a 
mode accepted by administration; 

c2. said offline secret key distributor solving all equation combination 

C' 

representations from combination formula *, extending each equation combination 
representation to solve its equivalent combination set; wherein each equivalent 
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combination set has 0t combinations and each combination has t items consisted of two 
digits v . v i, and 

c3. putting all equivalent combination sets into a big group 

Please replace Paragraph [0054] with the following paragraph rewritten in 
amendment format: 

[0054] The method and system according to the invention have the following 
characteristics: 

1 . The online task distributor can broadcast a digital signature task without 
selecting secret share calculators and specifying sub-secret-keys, so when system is 
updating, the online task distributor will not be affected, and when a secret share 
calculator is damaged suddenly, execution time for broadcasting a task will not be 
affected too. 

2. When adding a secret share calculator, it is necessary only to generate a 
set of first sub-secret-keys for the new secret share calculator. The offline secret-key 
distributor can make equation combination according to the number of the newly added 
secret share calculator and the numbers of existing secret share calculators, compute 
the corresponding second sub-secret-key c^ea, and then add the new equation 
combination representation and ? sa to the secret share combiner in a way accepted by 
administration. The adding will not affect the system normal operation. 

3. When taking away a secret share calculator, shutting down the device is 
enough; for efficiency reason, equation combination representation including the secret 
share calculator number and corresponding Ca€a can be deleted. 
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4. The invention has the intrusion tolerance ability as other schemes 
mentioned in background section. When less than t secret share calculators are 
intruded, the system secret key d will not be leaked. Since secret share combiners are 
added, even all secret share calculators are intruded, the system secret key d will not 
be leaked also. It can be proved theoretically that attacking secret share combiners 
cannot obtain the system secret key d; although there are many equations, the rank of 
coefficient matrix of the equations is less than the number of variables. 

5. The invention can resist a conspiracy attack from the secret share 
calculator and the secret share combiner, i.e. even when a conspiracy attack is done by 
a secret share calculator and a secret share combiners, the system secret key d will not 
be leaked, furthermore, comparing with other schemes, the number of the secret share 
combiners can be less greatly, for example, when k = 5 and t = 3, the least number of 
secret share combiners is 2. 

6. An operator confirmation is added during distributing private key and 
issuing certificate, which will further guarantee security and reliability of issuing digital 
certificate. Further areas of applicability of the present invention will become apparent 
from the detailed description provided hereinafter. It should be understood that the 
detailed description and specific examples, while indicating the preferred embodiment of 
the invention, are intended for purposes of illustration only and are not intended to limit 
the scope of the invention 
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Please replace Paragraph [0064] with the following paragraph rewritten in 
amendment format: 

[0064] The processing of sharing secret d in this system structure is 
completed through two layers of components: one layer of components are composed 
of secret share calculators 23 and another layer of components are composed of secret 
share combiners 24. More than one djj are respectively stored in the secret share 
calculators 23, and c a is stored in the secret share combiners 24. In this way, a two- 
layer secret share structure is formed. Two layers of components respectively store first 
sub-secret-key djj and second sub-secret-key c a . The first sub-secret-key djj employs 
two digits as its suffix, among them the first digit j is a sequence number, i.e. device 
number, of the secret share calculators 23, j = 1, 2 ... k, and the second digit i is a 
number of the secret keys stored in a certain secret share calculator 23, i = 1, 2 ... I. For 
example, when a secret share calculator 23 stores two items of djj, the first sub-secret- 
key respectively are dji and dj2, meanwhile dn and di2 represent two items of first sub- 
secret-keys stored in the first secret share calculator. The a is the second sub-secret- 
mac 'ure of the secret, share, combiner 
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